[Secure-testing-commits] r58170 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Dec 1 09:29:55 UTC 2017


Author: carnil
Date: 2017-12-01 09:29:55 +0000 (Fri, 01 Dec 2017)
New Revision: 58170

Modified:
   data/CVE/list
Log:
Add CVE-2017-17085/wireshark

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-01 09:28:18 UTC (rev 58169)
+++ data/CVE/list	2017-12-01 09:29:55 UTC (rev 58170)
@@ -8,7 +8,10 @@
 CVE-2017-17086 (Indeo Otter through 1.7.4 mishandles a "</script>" substring in an ...)
 	TODO: check
 CVE-2017-17085 (In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14250
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=f5939debe96e3c3953c6020818f1fbb80eb83ce8
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-49.html
 CVE-2017-17084 (In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA ...)
 	TODO: check
 CVE-2017-17083 (In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector ...)




More information about the Secure-testing-commits mailing list